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DETAILED ACTION 

Response to Amendment 

This office action is in response to amendments and remarks filed on May 11, 2009. 
Original application contained Claims 1-21. Applicant amended Claims 23 and added new 
Claims 25, Claims 1-3, 10-14, 21 and 23-25 are pending. 

Response to Arguments 

Applicant's arguments filed on May 1 1 , 2009 have been fully considered but they are not 
persuasive because of the following reasons: 

Applicants argued regarding independent Claims 1,11, and 24 and stated that in the 
system of cited prior art" Burger is teaching to store this information on network server 114. 
This teaches away from storing a log of identifiers on a secure key device as recited in 
Applicant's claim 24 ". 

This is not found persuasive. Applicant claimed storage device only keep identifier (a 
database key or ID provided by secure central key hub) of the locations visited [Fig. 4-5, 
paragraph 22-23]. Cited prior art Burger discloses a list of currently authorized locations for 
interface stations 104 stored in database 406 of the network server 114 (paragraph. 0146, Figs. 1 
and 4) where the Packet Vault can be used by sending interface unit identifier ( a database key or 
ID) to the network server. 
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Thus, cited prior art does teach accessing authorized location by sending an identifier to a 
central server. 

As a result, the system of cited prior art(s) does implement and teaches a system and 
method that relates to providing a device for secure identification which also make use of 
presently available installed infrastructure. 

Applicants clearly have failed to explicitly identify specific claim limitations, which 
would define a patentable distinction over prior arts. 

Therefore, the examiner asserts that the system of cited prior arts does teach or suggest 
the subject matter broadly recited in independent Claims and in subsequent dependent Claims. 
Accordingly, rejections for claims 1-3, 10-14, 21 and 23-25 are respectfully maintained. 

Claim Rejections - 35 USC §103 

The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-3, 10-14, 21 and 23-24 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Abbott et al. (U. S. Patent 6,671,808), and further in view of Burger (U. S. 
Pub. 2005/0060586 Al) (hereafter Burger). 
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1. Regarding Claim 1 Abbott teach and describe an apparatus (Fig. 2, and 4) comprising: a 
port; a storage medium coupled to a and accessed by controller, wherein, the storage medium is 
to store an encrypted unique identifier of the apparatus, encrypted identity information of an 
individual pre-associated with the apparatus and an encrypted log of unique identifier of 
locations the apparatus and the individual have visited, the controller coupled to the port to 
record in the encrypted log on the storage medium, a unique identifier corresponding to a 
locations the apparatus and the individual have visited; the controller configured to restrict the 
individual from modifying the encrypted unique identifier of the apparatus, encrypted identity 
information of the individual pre-selected with the apparatus, encrypted log of unique identifiers 
of locations the apparatus and the individual have visited as stored in the storage medium; and 
the controller, configured to provide, in response to a request from an authorized requestor, one 
or more of the unique identifier of the apparatus, identity information of the individual pre- 
associated with the apparatus, and the unique identifiers of locations the apparatus and the 
individual have visited (col. 3 line 26 to col. 4 line 7, col.4 line 50 to line 62, col. 5 line 12 to line 
15, col. 5 line 55 to col. 6 line 60, and col. 7 line 38 to col. 9 line 65). 

Although the system disclosed by Abbot shows all the features of the claimed limitation, 
as well as secure identification of individuals (users) when using the unique USB enabled device 
but Abbot does not specifically discuss in detail unique identifier of the apparatus, encrypted 
identity information of an individual pre-associated with the apparatus, and the identity of 
locations of network nodes to which apparatus communicated with during transactions. 

In an analogous art, Burger, on the other hand discloses computing environment that 
describe methods of portable electronic authorization system (Fig. 1-2, 4) by engaging 
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transactions involving financial and/or non-financial media and devices, where apparatus has an 
authenticator that authenticates an identity of a user, and interface station conducting 
registration process when device access different locations [Fig. 1-2, and paragraph 0019 - 
0020, 0114-0118, and 0146]. 

Therefore, It would have been obvious to one ordinary skilled in the art at the time of 
invention to combine the teachings of Abbot and Burger, because Burger's system of portable 
electronic authorization with plurality of unique devices for providing plurality of services, such 
as device management, business transaction, and location management, after authenticating the 
device and user by using embedded ID would not only enhance the trustworthiness of the user 
of portable device when tracking the device in a external network but will also generate a log of 
transactions and location where device was communicated and used (co.7 line 9 to line 15). 

2. Regarding Claim 1 1 Abbott teach and describe a system for allowing for secure 
identification of an individual when accessing information (Fig.2, and 4) comprising: a central 
hub configured to communicate with a plurality of touchpoints, at least one of the plurality of 
touchpoints configured to communicate with at least one device; the at least one device 
comprising a port; a storage medium coupled to and accessed by a controller, wherein the storage 
medium is configured to store an encrypted unique identifier of the apparatus, encrypted identity 
information of an individual pre-associated with the apparatus, and an encrypted log of unique 
identifiers of locations the apparatus and the individual have visited; the controller, coupled to 
the port, configured to record in the encrypted log on the storage medium, a unique identifier 
corresponding to a location the apparatus and the individual have visited; the controller 
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configured to restrict the individual from modifying the encrypted unique identifier of the 
apparatus, encrypted identity information of the individual pre-associated with the apparatus, and 
the encrypted log of unique identifiers of locations the apparatus and the individual have visited, 
as stored in the storage medium; and 

the controller, configured to provide, in response to a request from an authorized requestor, one 
or more of the unique identifier of the apparatus, identity information of the individual pre- 
associated with the apparatus, and the log of unique identifiers of locations the apparatus and the 
individual have visited (col. 3 line 26 to col. 4 line 7, col.4 line 50 to line 62, col. 5 line 12 to line 
15, col. 5 line 55 to col. 6 line 60, and col. 7 line 38 to col. 9 line 65). 

Although the system disclosed by Abbot shows all the features of the claimed limitation, 
as well as secure identification of individuals (users) when using the unique USB enabled device 
but Abbot does not specifically discuss in detail unique identifier of the apparatus, encrypted 
identity information of an individual pre-associated with the apparatus, and the identity of 
locations of network nodes to which apparatus communicated with during transactions. 

In an analogous art, Burger, on the other hand discloses computing environment that 
describe methods of portable electronic authorization system (Fig. 1-2, 4) by engaging 
transactions involving financial and/or non-financial media and devices, where apparatus has an 
authenticator that authenticates an identity of a user, and interface station conducting 
registration process when device access different locations [Fig. 1-2, and paragraph 0019 - 
0020, 0114 -0118, and 0146]. 

Therefore, It would have been obvious to one ordinary skilled in the art at the time of 
invention to combine the teachings of Abbot and Burger, because Burger's system of portable 
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electronic authorization with plurality of unique devices for providing plurality of services, such 
as device management, business transaction, and location management, after authenticating the 
device and user by using embedded ID would not only enhance the trustworthiness of the user 
of portable device when tracking the device in a external network but will also generate a log of 
transactions and location where device was communicated and used (co.7 line 9 to line 15). 

3. Regarding Claim 24 Abbott teach and describe a secure key hub to serve as a centralized 
data collection point, the hub configured to: 

receive and store information from at least one touchpoint regarding usage of a secure key device 
at the at least one touchpoint, the secure key device comprising a storage medium configured to 
store an encrypted unique identifier of the secure key device, encrypted identity information of a 
user of the secure key device, and an encrypted log of identifiers of locations at which the secure 
key device has been used; and provide information to the at least one touchpoint to match with 
information received by the at least one touchpoint from the secure key device in order to 
identify the user of the secure key device (col. 3 line 26 to col. 4 line 7, col.4 line 50 to line 62, 
col. 5 line 12 to line 15, col. 5 line 55 to col. 6 line 60, and col. 7 line 38 to col. 9 line 65). 

Although the system disclosed by Abbot shows all the features of the claimed limitation, 
as well as secure identification of individuals (users) when using the unique USB enabled device 
but Abbot does not specifically discuss in detail unique identifier of the apparatus, encrypted 
identity information of an individual pre-associated with the apparatus, and the identity of 
locations of network nodes to which apparatus communicated with during transactions. 
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In an analogous art, Burger, on the other hand discloses computing environment that 
describe methods of portable electronic authorization system (Fig. 1-2, 4) by engaging 
transactions involving financial and/or non-financial media and devices, where apparatus has an 
authenticator that authenticates an identity of a user, and interface station conducting 
registration process when device access different locations [Fig. 1-2, and paragraph 0019 - 
0020, 0114-0118, and 0146]. 

Therefore, It would have been obvious to one ordinary skilled in the art at the time of 
invention to combine the teachings of Abbot and Burger, because Burger's system of portable 
electronic authorization with plurality of unique devices for providing plurality of services, such 
as device management, business transaction, and location management, after authenticating the 
device and user by using embedded ID would not only enhance the trustworthiness of the user 
of portable device when tracking the device in a external network but will also generate a log of 
transactions and location where device was communicated and used (co.7 line 9 to line 15). 

4. Claims 2-3, 10, 12-14, and 21, and 23 are rejected applied as above rejecting Claims 1, 
and 1 1 . Furthermore, the system of Abbott and Burger teaches and describes a system wherein 

As per Claim 2, the port comprises any one of a firewire port, USB port or an infmiband 
port (Abbot: col.3 line 26 to line 30, col.5 line 12 to line 14, Fig.l, Item 130, Fig.4 Item 402)) 

As per Claim 3, the storage medium comprises a memory (Abbot: Fig. 2A, col. 4 line 50 
to line 62). 

As per Claim 10, the security information can be enhanced or modified by downloading 
data to the apparatus (Abbot: col. 8 line 20 to line 33 and col. 10 line 6 to line 1 1). 
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As per Claim 12, the port comprises any one of a firewire port, USB port or an infmiband 
port (Abbot: col.3 line 26 to line 30, col.5 line 12 to line 14, Fig.l, Item 130, Fig.4 Item 402). 

As per Claim 13, at least one of the plurality of touchpoints comprises a personal 
computer (Abbot: Fig.l Item 102). 

As per Claim 14, the storage medium comprises a flash memory (Abbot: Fig. 2A, col.4 
line 50 to line 62). 

As per Claim 21, the security information within the at least one device can be enhanced 
or modified by downloading data to the at least one device (Abbot: col. 8 line 20 to line 33, and 
col. 10 line 6 to line 1 1). 

As per Claim 23, the location of at least one of the plurality of touchpoints is selected 
from the group consisting of: touchpoint comprises any one of an airport, a car rental, a bank, 
and combinations thereof (Burger: [0125, 0135, and 0152]). 

As per Claim 24, the log of identifiers does not have overwrite capability; and the at least 
one touchpoint is to read the log of identifiers and to log touchpoint information within the 
secure key device regarding usage of the secure key device at the at least one touchpoint (Abbott: 
col.3 line 26 to col.9 line 65, and Burger: [Fig. 1-2, and paragraph 0019 - 0020, 01 14 -0118, and 
0146]). 



Conclusion 
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Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1 .136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to SYED ZIA whose telephone number is (571)272-3798. The 
examiner can normally be reached on 9:00 to 5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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August 14, 2009 
/Syed Zia/ 

Primary Examiner, Art Unit 243 1 



